What do you want your ISP to block today?
Gerardo Gregory
ggregory at affinitas.net
Wed Sep 3 21:28:23 UTC 2003
>But should the end user pay for the faults?
The end user is angry because lashing out at the manufacturer gets you
routed to a null interface :)
why should the ISP pay? (Now that is the question)
>They already pay
>for the software and the Internet connection.
Do you call Microsoft when your "internet" connection is down? (msn.net
customers exempted)
>How many ISPs on this list
>provide support for non-MSFT operating systems? Does the free CD you
>hand out run on anything but Windows?
I think they only support their application (the one they want you to
dial-in with) over this operating system, nothing else (meaning the OS
itself and this is mostly for residential users, nothing was given to me
when I had my last optical circuit handed over...wait let me check...nope
nothing).
>90% + of internet users do use MSFT Windows. So I don't think you have a
>choice other than to "live with it".
Wow only 10% of "internet" connected systems are "other than"...!!!!!!
I think that it is ridiculous to expect the ISP now to start filtering these
ports. The "internet" in itself is nothing more than a communications link,
and the ISP's are providers to this link. The purpose of which is the
exchange of information over a "public" medium.
You want an ISP to begin filtering at the 4th layer (OSI Reference...yikes),
why???? Besides alleviating the headaches of some users of a specific
manufacturers product, it makes no sense.
What would you filter? Before you filter you need a policy in place. For
this idea to even be effective you would need a policy that is acceptable
among all ISP's, (HA HA HA). Next you need all ISP's to implement these
policies consistently and equally throughout their infrastructure (scary).
Now you go back to your firewall logs and poof!!!!! Still allot of junk
(different junk, but nonetheless junk)!!!! You think it will stop there????
Human nature is suitable for adaptation...now what??? More
filters......makes no sense....so there will be no more free exchange of
information over a public medium?
Since only 90% of internet users use MSFT Windows we should make it a
Microsoft friendly network then. Plug and Play your heart out!!!!!!
G.
Johannes Ullrich writes:
>
>
>> No. ISPs should not block ports unless they are listed in the AUP as
>> non-permitted traffic or it is a necessary and temporary remedial action
>> for a service-affecting problem.
>
> I fully agree that ISPs should include the list of blocked ports in
> their AUP. (somewhere in the paper it mentions the confusion caused by
> uncoordinated filters).
>
>> I still do not understand why a manufacturer is permitted to release a
>> product which causes such harm, and, rather than hold that manufacturer
>> liable, so many people feel that the entire rest of the world should
>> change to accommodate that one manufacturer's deficiencies
>
> But should the end user pay for the faults? They already pay
> for the software and the Internet connection. How many ISPs on this list
> provide support for non-MSFT operating systems? Does the free CD you
> hand out run on anything but Windows?
>
> 90% + of internet users do use MSFT Windows. So I don't think you have a
> choice other than to "live with it".
>
>
> --
> --------------------------------------------------------------
> Johannes Ullrich jullrich at euclidian.com
> pgp key: http://johannes.homepc.org/PGPKEYS
> --------------------------------------------------------------
> "We regret to inform you that we do not enable any of the
> security functions within the routers that we install."
> support at covad.net
> --------------------------------------------------------------
>
>
Gerardo A. Gregory
Manager Network Administration and Security
402-970-1463 (Direct)
402-850-4008 (Cell)
------------------------------------------------
Affinitas - Latin for "Relationship"
Helping Businesses Acquire, Retain, and Cultivate
Customers
Visit us at http://www.affinitas.net
More information about the NANOG
mailing list